Vista Antispyware 2012 is a name-changing fake anti-virus program, which uses a variety of deception strategies in order to lure victims into purchasing its phony full version.
There are two methods that the rogue exploits in order to penetrate into vulnerable computers. The first one consists of online scanners, which are part of corrupted websites. When the user clicks on the scanner, it states that the PC has been severely infected and promotes Vista Antispyware 2012 as the best anti-virus solution. The counterfeit conclusion of this online scan should not mislead you into downloading the trial version of this program, because it is a virus. What is more, it is always a good idea to check online if a given program is legitimate or not, before letting it inside your PC.
The second method that Vista Antispyware 2012 uses for entering computers is by use of Trojans, lying in wait in compromised websites. When a user clicks through the website, the Trojans sneak into the computer system uninvited, even without the user’s knowledge, through loopholes in the security of the PC. Since such vulnerabilities are caused mainly by outdated software, it is highly recommended that you keep all your programs up-to-date by downloading the updates only from the official websites of the applications.
Just like the other variations of this rogue, Vista Antispyware 2012 installs itself as one executable with a random three-character name. It makes malicious configurations that enable it to be launched automatically whenever you try to start a program. When it appears instead of the application you attempt to run, Vista Antispyware 2012 displays a fraudulent alert, which claims that the program you wanted to launch is corrupted. This strategy is used with the hope of blocking the victim’s legitimate AV tool from being evoked since it will detect Vista Antispyware 2012 immediately.
Right after its installation, Vista Antispyware 2012 starts flooding the system with phony notifications, which claim that the PC needs to cope with a number of security threats. Some of these pop-ups are:
Vista Antispyware 2012 Firewall Alert
Vista Antispyware 2012 has blocked a program from accessing the internet
Internet Explorer is infected with Trojan-BNK.Win32.Keylogger.gen
Private data can be stolen by third parties, including credit card details and passwords.
Your computer security is at risk. Spyware, worms, and Trojans were detected in the background. Prevent data corruption and credit card information theft. Safeguard your system and perform a free security scan now.
System Security threat was detected. Viruses and/or spyware may be damaging your system now. Prevent infection and data loss or stealing by running a free security scan.
Severe System Damage!
Spyware and viruses detected in the background. Sensitive system components under attack! Data loss, identity theft and system corruption are possible. Act now, click here for a free security scan.
Spyware intrusion detected. Your system is infected. System integrity is at risk. Private data can be stolen by third parties, including credit card details and passwords. Click here to perform a security repair. Vista Antispyware 2012 Alert
Security Hole Detected!
A program is trying to exploit Windows security holes! Passwords and sensitive data may be stolen. Do you want to block this attack?
Bogus scans are yet another scare-tactic that the malicious program uses. Vista Antispyware 2012 performs scans of the system every time and again, and they all display the same frightening results – the system is infected with numerous malware pieces. Do not let these results scare you, because they are completely made-up and aim at making you purchase Vista Antispyware 2012 – full version. Regardless of the fact that the pop-ups and scans advertise this application as a very efficient virus-fighter, Vista Antispyware 2012 is uncapable of detecting or removing viruses, because it is a virus itself.
One of the cleverest tricks of Vista Antispyware 2012 is that it hijacks the victims’ browsers and thus makes them uncapable of viewing given security websites. Instead of opening the requested webpage, the user is provided with the following warning:
Vista Antispyware 2012 Alert
Internet Explorer alert. Visiting this site may pose a security threat to your system! Possible reasons include:
– Dangerous code found in this site’s pages which installed unwanted software into your system. – Suspicious and potentially unsafe network activity detected.
– Spyware infections in your system
– Complaints from other users about this site.
– Port and system scans performed by the site being visited.
Things you can do:
– Get a copy of Vista Antispyware 2012 to safeguard your PC while surfing the web (RECOMMENDED)
Run a spyware, virus and malware scan
– Continue surfing without any security measures (DANGEROUS)
This is done with the mere purpose of preventing the victim from opening websites such as ours and thus finding out that Vista Antispyware 2012 is, in fact, a scam, not an anti-virus application.
It is obvious that Vista Antispyware 2012 does not have the slightest intention of helping you overcome your computer security problems, if any. All it does is to frighten you into believing your PC is infected just to force through its bogus full version. Do not let hackers gain profit from you – remove this program right on the moment you spot it working on your machine, with the help of a legitimate anti-virus program.
Vista Antispyware 2012 Manual Removal Instructions:
Stop These Vista Antispyware 2012 Processes:
(Learn how to do this)
Find and Delete These Vista Antispyware 2012 Files:
(Learn how to do this)
Remove These Vista Antispyware 2012 Registry Values:
(Learn how to do this)
HKEY_CURRENT_USER\Software\Classes\.exe “(Default)” = ‘exefile’
HKEY_CURRENT_USER\Software\Classes\.exe “Content Type” = ‘application/x-msdownload’
HKEY_CURRENT_USER\Software\Classes\.exe\DefaultIcon “(Default)” = ‘%1? = ‘”%UserProfile%\Local Settings\Application Data\[random].exe” /START “%1? %*’
HKEY_CURRENT_USER\Software\Classes\.exe\shell\open\command “IsolatedCommand” = ‘”%1? %*’
HKEY_CURRENT_USER\Software\Classes\.exe\shell\runas\command “(Default)” = ‘”%1? %*’
HKEY_CURRENT_USER\Software\Classes\.exe\shell\runas\command “IsolatedCommand” = ‘”%1? %*’
HKEY_CURRENT_USER\Software\Classes\exefile “(Default)” = ‘Application’
HKEY_CURRENT_USER\Software\Classes\exefile “Content Type” = ‘application/x-msdownload’
HKEY_CURRENT_USER\Software\Classes\exefile\DefaultIcon “(Default)” = ‘%1?
HKEY_CURRENT_USER\Software\Classes\exefile\shell\open\command “(Default)” = ‘”%UserProfile%\Local Settings\Application Data\[random].exe” /START “%1? %*’
HKEY_CURRENT_USER\Software\Classes\exefile\shell\open\command “IsolatedCommand” = ‘”%1? %*’
HKEY_CURRENT_USER\Software\Classes\exefile\shell\runas\command “(Default)” = ‘”%1? %*’
HKEY_CURRENT_USER\Software\Classes\exefile\shell\runas\command “IsolatedCommand” – ‘”%1? %*’
HKEY_CLASSES_ROOT\.exe\shell\open\command “(Default)” = ‘”%UserProfile%\Local Settings\Application Data\[random].exe” /START “%1? %*’
HKEY_CLASSES_ROOT\exefile\shell\open\command “(Default)” = ‘”%UserProfile%\Local Settings\Application Data\[random].exe” /START “%1? %*’
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command “(Default)” = ‘”%UserProfile%\Local Settings\Application Data\[random].exe” /START “%Program Files%\Mozilla Firefox\firefox.exe”‘
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command “(Default)” = ‘”%UserProfile%\Local Settings\Application Data\[random].exe” /START “%Program Files%\Mozilla Firefox\firefox.exe” -safe-mode’
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command “(Default)” = ‘”%UserProfile%\Local Settings\Application Data\[random].exe” /START “%Program Files%\Internet Explorer\iexplore.exe”